A vulnerability was found in locutusjs locutus up to 3.0.24 . It has been classified as problematic . This affects an unknown function of the component Query Handler . The manipulation leads to improperly controlled modification of object prototype attributes. This vulnerability is referenced as CVE-2026-33994 . Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.